According to a new press release, research from Exabeam and International Data Corporation (IDC) highlights the challenges faced by organizations worldwide in defending against cyberattacks. Despite reported improvements in threat detection, investigation, and response (TDIR) capabilities, more than half of the surveyed companies (57%) experienced significant security incidents in the past year, requiring additional resources for remediation. The study emphasizes the program gaps resulting from overburdened security teams lacking key automated TDIR resources. North America had the highest rate of security incidents (66%), followed closely by Western Europe (65%), and Asia Pacific and Japan (APJ) at 34%.
The research reveals a significant disparity between self-reported security measures and actual incidents, with over 70% of organizations reporting better performance on cybersecurity key performance indicators (KPIs). However, the inflated confidence levels create a false sense of security, potentially putting organizations at risk. The lack of full visibility and complete TDIR automation capabilities may explain this discrepancy. Organizations globally reported monitoring only 66% of their IT environments, leaving room for blind spots, especially in the cloud. The study also highlights the lag in automation across TDIR workflows, with 53% of organizations automating 50% or less of their TDIR workflow, contributing to the time spent on TDIR (57%).
The study identifies key TDIR needs for 2024 and beyond, including a demand for third-party assistance in managing threat detection and response (36%) and a desire for improved understanding of normal user and entity behavior within organizations (35%). The findings underscore the growing opportunity for integrating automation and AI-driven security tools to address these challenges. The report concludes with a prediction that the market demand for security solutions leveraging AI is expected to continue in 2024 and beyond as organizations seek to improve their TDIR processes and metrics.